Cyberattack leaves radiology practice closed for over a month

Pinehurst Radiology Associates has been closed for nearly two months following a data breach. 

What happened

Pinehurst Radiology Associates, a North Carolina radiology provider, faced a destructive data breach in late January. 

While the provider remains fairly tight-lipped about the incident–no notice has been posted on their website or provided to the Department of Health and Human Services–it’s clear that the business has not yet been able to reopen. The center recommends patients call their referring provider to have appointments rescheduled or scheduled with a different organization. It’s currently unclear if or when the health center will reopen to patients. 

What was said

In a statement provided to The Pilot, the center said, “Pinehurst Radiology Associates continues to work with its legal counsel and cybersecurity specialists to investigate and respond to a cybersecurity event which occurred in late January.”

The organization also said that they are still working to restore its network environment, adding, “Certain systems remain offline and PRA is not able to schedule patients for mammography or ultrasound services…The investigation into the scope and nature of the event is ongoing and we appreciate your patience while we undertake comprehensive efforts to restore our systems in a safe and secure manner.”

Those who call the center are met with a voicemail stating that “Pinehurst Radiology will be closed for the foreseeable future.”  

The big picture

While data breaches are often a nuisance for victims, potentially leading to identity theft or other complications, in this case, the breach has directly impacted patient care. For patients throughout North Carolina, Pinehursts sudden closure could prevent them from receiving timely care and overburden nearby radiology centers. 

Breaches are often thought of as leading to financial consequences for healthcare organizations, but this incident should serve as a reminder that real patients, as well as practitioners who may be out of work, are the victims of these situations. 

FAQs

Why would a data breach prevent patients from receiving care? 

Data breaches frequently infect a healthcare organization’s IT system, regardless of where the breach started. Certain files may become inaccessible, or practitioners may be locked out of programs needed to provide care. In some cases, these files are simply accessed by a malicious group, but in other cases, files may become encrypted and completely inaccessible to providers. 

Will Pinehurst close permanently? 

Currently, Pinehurst says they are closed “for the foreseeable future,” so it remains unclear if the organization will open again. Unfortunately, healthcare providers can close permanently following breaches, but this outcome is uncommon.